Chrome Proposes Disregarding Certificates Issued by Chunghwa and Netlock: Learn How Qualys Certificate Overview Aids Response
In a significant move, Google has announced that it will no longer trust new digital certificates issued by Chunghwa Telecom and Netlock after 11:59:59 PM UTC on July 31, 2025. This decision stems from concerns about potential security risks, lack of transparency, and possible interference or restrictions on network access and data management.
This development affects website operators using TLS/SSL certificates from these Certificate Authorities (CAs) and enterprises relying on legacy trust models or third-party providers. Qualys, a leading provider of cloud-based security and compliance solutions, has identified approximately 2,200 certificates issued by Chunghwa or Netlock in active environments, with around 360 exposed to the public and around 110 due to expire within the next 90 days.
To help organizations manage these certificates, Qualys has introduced the Certificate View module. This tool allows for the initiation of certificate renewal processes for certificates that are about to expire. It can help identify, monitor, and manage certificates issued by Chunghwa Telecom and Netlock. Certificates discovered by Qualys are automatically classified as Leaf, Intermediate, and Root for easier management.
Qualys Certificate View also distinguishes between Internally and Externally discovered Certificates. It provides detailed information about each certificate, including the latest TLS Protocols in use. The Global TLS Protocol Insights dashboard can provide the latest certificate trends.
One of the key features of Qualys Certificate View is its ability to automate the process of certificate discovery and renewal. Activating all VMDR Assets for Certificate View enables automatic discovery of all certificates in the environment. The Certificate View Actionable Insights dashboard can be downloaded to explore new features.
Moreover, Qualys Certificate View can help eliminate blind spots in certificate infrastructure, ensuring compliance with browser and CA policies, and avoiding service disruptions caused by expired or distrusted certificates. Responses (alerting) in Qualys Certificate View can be used to trigger alerts to respective stakeholders and get notified via various platforms about upcoming certificate expirations.
It's important to note that pre-existing certificates will continue to be valid until they expire, but website operators are strongly encouraged to migrate away as soon as possible to avoid future issues. For end users of Chrome on all platforms, visiting affected sites with these certificates will result in a full-page security warning.
In conclusion, the impending mistrust by Google of certificates issued by Chunghwa Telecom and Netlock underscores the importance of proactive certificate management. Organizations can leverage tools like Qualys Certificate View to stay ahead of potential issues and maintain a secure digital environment.
Read also:
- Rachel Reeves conducts a discussion with Scott Bessent and financial executives, focusing on investment matters
- Strategic approach to eco-friendly nickel production for electric vehicles in Europe
- Week 39/24 Highlights: Tesla CEO's visit, Robo-taxi buzz, Full Self-Driving study, Affordable electric cars, and European pricing less than €30,000
- Solar energy company, Imperium, alongside QORAY Mobility & Energies Solar Business, bolsters Nigeria's environmental future by producing superior solar panels domestically and offering flexible payment options.
